|
|
|||
| Rule General Information |
|---|
| Release Date: | 2021-07-01 | |
| Rule Name: | Selea OCR-ANPR Camera SeleaCamera Arbitrary File Read Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Selea OCR-ANPR camera has arbitrary file reading vulnerability. This vulnerability is caused by an arbitrary file read vulnerability in the SeleaCamera interface. An attacker can use this vulnerability to construct a specific URL to obtain any file on the server through directory traversal. Using this vulnerability, an attacker can obtain public plaintext credentials to bypass authentication. | |
| Impact: | An attacker could exploit this vulnerability to read arbitrary file,causing privacy leaks. | |
| Affected OS: | Network Device | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |